Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/t0VaQyMdkG8EaxHTSisy_8WYCrw.roa
File: t0VaQyMdkG8EaxHTSisy_8WYCrw.roa (raw, json)
Hash identifier: bFDQlKj+zJdzKnOxV/51XM4A/3QGA//hLMouLS84SPY=
Subject key identifier: B7:45:5A:43:23:1D:90:6F:04:6B:11:D3:4A:2B:32:FF:C5:98:0A:BC
Certificate issuer: /CN=9cb80bc4b597c176bd8538c188fec73da25e6e84
Certificate serial: 01936FE48F4F3E2B45AF3194AF393C08702A
Authority key identifier: 9C:B8:0B:C4:B5:97:C1:76:BD:85:38:C1:88:FE:C7:3D:A2:5E:6E:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLgLxLWXwXa9hTjBiP7HPaJeboQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/t0VaQyMdkG8EaxHTSisy_8WYCrw.roa
Signing time: Wed 27 Nov 2024 23:11:10 +0000
ROA not before: Wed 27 Nov 2024 23:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201364
IP address blocks: 185.163.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 21:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6f:e4:8f:4f:3e:2b:45:af:31:94:af:39:3c:08:70:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb80bc4b597c176bd8538c188fec73da25e6e84
Validity
Not Before: Nov 27 23:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7455a43231d906f046b11d34a2b32ffc5980abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:24:c8:e7:35:14:f4:5c:fb:63:48:8a:31:b1:
88:a2:84:af:7a:03:d9:42:a6:76:62:dc:d2:f0:41:
e0:d5:2c:9e:53:48:40:aa:23:c9:20:c8:c0:12:ae:
4d:5d:b8:82:75:02:47:1c:74:f4:ab:71:e2:98:3f:
56:e5:1b:3c:a2:2f:61:13:dc:31:f0:cd:79:95:45:
f7:54:15:d7:84:d6:e0:ae:bd:a8:a0:5f:6b:d5:77:
47:34:ce:ed:45:3b:28:52:28:2a:c6:33:92:49:88:
22:f7:fc:43:73:02:cc:83:1c:85:13:ff:4f:1d:27:
3d:92:f4:19:e8:65:96:0a:80:95:7f:1e:85:46:c2:
1b:92:34:fa:83:25:40:4e:df:c2:32:8f:35:d7:7a:
1c:a3:9f:ea:28:75:0b:72:c7:46:3c:44:aa:46:d5:
79:39:ce:b6:a6:2b:80:e1:8e:66:24:e5:f9:a7:10:
d2:47:27:9d:70:31:b1:d6:c4:ed:89:3b:2a:5e:60:
4a:79:f9:73:e9:b9:98:68:f5:1d:67:67:b8:41:a1:
f2:74:67:6d:d6:ae:9e:9f:e1:04:aa:27:b6:28:e6:
da:ec:67:da:ba:1a:2f:40:b9:c0:d2:19:e6:75:13:
63:a2:f1:8e:f7:32:ad:9a:ac:40:dc:ec:38:25:f6:
4b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:45:5A:43:23:1D:90:6F:04:6B:11:D3:4A:2B:32:FF:C5:98:0A:BC
X509v3 Authority Key Identifier:
keyid:9C:B8:0B:C4:B5:97:C1:76:BD:85:38:C1:88:FE:C7:3D:A2:5E:6E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLgLxLWXwXa9hTjBiP7HPaJeboQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/t0VaQyMdkG8EaxHTSisy_8WYCrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/720c04-e9c7-48b2-8fec-9cfe1b57cd20/1/nLgLxLWXwXa9hTjBiP7HPaJeboQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.128.0/24
Signature Algorithm: sha256WithRSAEncryption
74:92:83:83:34:30:f1:3d:21:6c:8d:c8:dd:52:7a:57:51:d8:
7e:b3:ea:24:74:cb:cd:16:5b:59:d4:31:e3:73:0d:e4:ef:fd:
7a:32:d4:eb:e1:e7:91:9d:39:32:63:9c:0f:a2:45:02:9e:08:
f0:0e:86:1e:d2:58:8b:3f:4f:22:fc:52:14:ca:72:a8:87:5b:
7b:43:83:db:99:62:ca:e8:89:04:de:36:af:38:31:91:e6:9b:
95:36:c6:6b:50:5e:b2:e5:df:9c:27:46:23:ca:2a:54:ee:75:
e9:4e:6e:64:be:6b:42:0a:06:d0:b1:81:cc:ee:97:e0:f6:78:
e2:7f:e5:cf:82:78:06:8d:42:5e:4f:4b:9f:31:ed:68:3e:d5:
1d:c4:e9:59:a1:e6:d2:6a:73:13:12:11:2f:49:b8:3c:dc:a8:
95:65:a1:f0:85:5e:1b:73:05:70:86:a5:2f:86:e1:1d:41:db:
4c:8c:76:9c:3a:1e:66:4b:78:d3:ac:6f:a9:78:73:8f:39:99:
14:48:ab:4d:8a:65:f5:15:f2:41:d7:22:ca:34:bd:8f:ee:22:
20:02:19:5a:8b:d5:f5:a8:3a:4b:e9:7a:2d:cb:b6:3a:62:ad:
a2:ff:35:ea:70:d7:35:b0:9d:b5:49:e5:42:14:ab:66:3e:8b:
32:a3:c8:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 20:36:14 2025 by rpki-client